Collabora Online has Stored Cross-Site-Scripting vulnerability in admin interface
CVE-2023-34088

5.4MEDIUM

Key Information:

Vendor: CollaboraOnline
Status: online
Vendor: CVE Published:; 31 May 2023

Summary

Collabora Online is a collaborative online office suite. A stored cross-site scripting (XSS) vulnerability was found in Collabora Online prior to versions 22.05.13, 21.11.9.1, and 6.4.27. An attacker could create a document with an XSS payload as a document name. Later, if an administrator opened the admin console and navigated to the history page, the document name was injected as unescaped HTML and executed as a script inside the context of the admin console. The administrator JSON web token (JWT) used for the websocket connection could be leaked through this flaw. Users should upgrade to Collabora Online 22.05.13 or higher; Collabora Online 21.11.9.1 or higher; Collabora Online 6.4.27 or higher to receive a patch.

Affected Version(s)

online coolwsd < 22.05.13 < coolwsd 22.05.13

online coolwsd < 21.11.9.1 < coolwsd 21.11.9.1

online loolwsd < 6.4.27 < loolwsd 6.4.27

References

https://github.com/CollaboraOnline/online/security/adviso...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
May 31, 2023
Vulnerability Reserved
May 25, 2023